Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi I currently have the following: An ASA 5515 configured for radius pointing at an external RSA server (radius_group1), this provides MFA for Anyconnect users and has a dedicated group-policy and tunnel group. Users can authenticate using just the R...
Hi
I'm running a pair of HA 5585-X firewalls in multi context mode, one of the security context is configure with an IPSEC tunnel to two sites using a primary/secondary peer crypto map for backup VPN traffic(all out the same interface). As these are...
Hi I have been tasked with deploying PVLANs on a cat3750 switch running layer 2 to provide secure multi tenant isolation for customer firewalls and routers. The plan is to give our customers a static address from our /24 PI range and use PVLANs sepa...
HiI'm in the process of migrating from two Catalyst 6509s running CatOS to a pair of Nexus 7009s in a VPC domain. The current Cat 6509 environment is running PVST+ and the STP priority is 8192 for all vlans. The N7Ks are running Rapid-PVST+ with an S...
HiI'm in the process of migrating from two Catalyst 6509s running CatOS to a pair of Nexus 7009s in a VPC domain. The current Cat 6509 environment is running PVST+ and the STP priority is 8192 for all vlans. The N7Ks are running Rapid-PVST+ with an S...
Hi AlexI have 2 virtual WSAs for redundancy, both running in transparent mode. We currently have our ASAs using one as a primary and the other as a secondary(not forwarding unless the primary dies). Do you know what the template would look like to ac...
Hi SteveThanks for the quick reply, that was a typo(the only section that I didn't copy and paste). Below is the 'show otv vlan' output. Interesting the I can't see any otv routes for vlan 163 for DC 1 when running 'show otv route' on dc2-nx7004-o...
Thanks, I understand that but should you loose the ability to create no switchport layer 3 interfaces? I'm guessing SVIs will be allowed and proxy the L3 requests to the m1 card. I cannot create a routed port(no switchport) or a layer 3 port channel ...
I’ve hit an issue with an F2e/M1 VDC. I can’t create L3 routed interfaces or L3 port channels on the F2e line card ports.Is this possible or is it a limitation when coexisting F2e/M1 line cards in the same VDC?Running 6.2(2a), SUP2EVDC XXXXXXXlimit-r...
